Error Message: HTTP 403.13 Forbidden: Client Certificate Revoked

ID: Q248058

The information in this article applies to:

Microsoft Internet Information Services version 5.0

SYMPTOMS

When you attempt to access an Internet resource, one of the following error messages may be displayed in the Web browser:

HTTP 403.13 Forbidden: Client certificate revoked

The page requires a valid client certificate

CAUSE

An HTTP 403.13 error message is returned when a resource that the user is attempting to access requires a valid client Secure Sockets Layer (SSL) certificate that the server recognizes. This client SSL certificate must be installed in the Web browser, because it is used for authenticating the user of that browser as a valid user of the resource.

The error message can also occur if IIS is unable to contact the server that stores the Certificate Revocation List (CRL) when checking for revoked certificates. If a CRL server is unreachable, the certificates are presumed to be revoked.

RESOLUTION

In the Web browser that is displaying the error, install a certificate from a recognized Certificate Authority (CA). If a certificate from a valid CA is installed, then contact that CA to verify the certificate has not been revoked, and that their CRL store is online.

MORE INFORMATION

For additional information on using Digital Certificates with Microsoft Internet Explorer, click the article number below to view the article in the Microsoft Knowledge Base:

Q195724 Description of Digital Certificates

The Security & Cryptography section of Microsoft's Online Web Workshop site provides detailed information about encryption and secure Internet communications.

An online seminar entitled Fundamental Cryptography and Certificates on the Internet is available for viewing at Microsoft's Seminar Online site.

Additional query words: IIS 5

Keywords : kbWinOS2000
Version : winnt:5.0
Platform : winnt
Issue type : kbprb